IETF Logo Mail Archive

Re: [multipathtcp] High-level design decisions /architecture

William Herrin <bill@herrin.us> Mon, 02 November 2009 23:38 UTC

Return-Path: <wherrin@gmail.com>
X-Original-To: multipathtcp@core3.amsl.com
Delivered-To: multipathtcp@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CC1503A6934 for <multipathtcp@core3.amsl.com>; Mon, 2 Nov 2009 15:38:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EQOVY+bYbxFv for <multipathtcp@core3.amsl.com>; Mon, 2 Nov 2009 15:38:28 -0800 (PST)
Received: from mail-ew0-f218.google.com (mail-ew0-f218.google.com [209.85.219.218]) by core3.amsl.com (Postfix) with ESMTP id 5AFA13A6919 for <multipathtcp@ietf.org>; Mon, 2 Nov 2009 15:38:28 -0800 (PST)
Received: by ewy18 with SMTP id 18so4971231ewy.43 for <multipathtcp@ietf.org>; Mon, 02 Nov 2009 15:38:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to:cc :content-type; bh=HYFq+cHwcwun3uDXW0D8PxBE0rHVNCDgxlbXFZg822o=; b=T62TOOvUSjWB2caMAffjN2sRRjSHZMlAggxi4NRkbQwz00r5beyLm1lIqS42kSa1zd 6rkFIomWJHjngMu4Axsw5cp1lEwgn2KQQqG6tKca7WU2Z6VKWpRADUidwR6hJk31MEyg DBGgLWyfjMgrzkQxUmHXG6Rf/gKs/F4nTVU0Q=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; b=a/f5EbSFqQiD3A+HEH7Cy/p/syi5cjaSQnKPagz5/wELm1w0mSZsdbLjiclJWUAh80 NBk+HRR710LpZ8j0+Zm96RNaHHJE3DimMlYpoy8q0QVCiLoi3c+Q5hbA6KpbNX98S1tX nOqLC+AY38jLLaago0urwtwVPHUkUl98s8PrU=
MIME-Version: 1.0
Sender: wherrin@gmail.com
Received: by 10.216.85.5 with SMTP id t5mr5399993wee.142.1257205126330; Mon, 02 Nov 2009 15:38:46 -0800 (PST)
In-Reply-To: <4AEF6114.6070106@it.uc3m.es>
References: <4A916DBC72536E419A0BD955EDECEDEC06363A62@E03MVB1-UKBR.domain1.systemhost.net> <3c3e3fca0911021328h2ef65493v9f0290f384f7b800@mail.gmail.com> <4AEF6114.6070106@it.uc3m.es>
Date: Mon, 02 Nov 2009 19:38:46 -0400
X-Google-Sender-Auth: 7f14d9c709f23c5f
Message-ID: <3c3e3fca0911021538y3ebd3f3fx6a03e7bc5b03f246@mail.gmail.com>
From: William Herrin <bill@herrin.us>
To: marcelo bagnulo braun <marcelo@it.uc3m.es>
Content-Type: text/plain; charset="ISO-8859-1"
Cc: multipathtcp@ietf.org
Subject: Re: [multipathtcp] High-level design decisions /architecture
X-BeenThere: multipathtcp@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Multi-path extensions for TCP <multipathtcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/multipathtcp>
List-Post: <mailto:multipathtcp@ietf.org>
List-Help: <mailto:multipathtcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/multipathtcp>, <mailto:multipathtcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Nov 2009 23:38:29 -0000

On Mon, Nov 2, 2009 at 6:45 PM, marcelo bagnulo braun
<marcelo@it.uc3m.es> wrote:
>> I'm concerned about this idea. One of the corner cases where shim6
>> falls apart is: once the connection migrates away from the original
>> addresses, how do the endpoints decide whether a new connection
>> request for the original addresses means the migrated addresses or the
>> current holder of the addresses? Think: FTP.
>>
>
> could you expand on this?
> I wasn't aware shim6 falls apart in any case neither this particular
> approach...

Hi Marcelo,

Consider the following scenario:

Host A comes online with 1.2.3.4.
Host A requests a new TCP connection to 5.6.7.8.
Established with host B at 5.6.7.8.
Host B adds 8.7.6.5
Host B removes 5.6.7.8
Host C comes online with 5.6.7.8.
Host A requests a new TCP connection to 5.6.7.8.

Which host does A connect to?

If the answer is C, protocols like FTP which initiate multiple TCP
connections to the same IP address fail once an endpoint gives up its
original address. That'll also impact web browsers which employ dns
pinning.

If the answer is B, I can hijack hotmail's IPs with respect to your
mail server for the few fractions of a second it takes to establish
and move a TCP connection over to an IP address I legitimately
control. You'll then indefinitely send subsequent hotmail-addressed
email to me. If I diligently pass it on to hotmail, you may never even
know.

If we identify the connection by the original IP address even after
that address is gone, effectively lying to the application, we can
induce it to incorrect behavior. That can have security implications
that may be hard to get a handle on.

Regards,
Bill Herrin

-- 
William D. Herrin ................ herrin@dirtside.com  bill@herrin.us
3005 Crane Dr. ...................... Web: <http://bill.herrin.us/>
Falls Church, VA 22042-3004

v2.23.0 | Report a Bug | By Email